Executive Summary
Summary | |
---|---|
Title | Cumulative Security Update for Internet Explorer (939653) |
Informations | |||
---|---|---|---|
Name | MS07-057 | First vendor Publication | 2007-10-09 |
Vendor | Microsoft | Last vendor Modification | 2007-10-09 |
Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
This critical security update resolves three privately reported vulnerabilities and one publicly disclosed vulnerability. The vulnerability with the most serious security impact could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/ms07-057.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-399 | Resource Management Errors |
50 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:2162 | |||
Oval ID: | oval:org.mitre.oval:def:2162 | ||
Title: | Address Bar Spoofing Vulnerability | ||
Description: | Microsoft Internet Explorer 7 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via onUnload Javascript handlers. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-1091 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:2244 | |||
Oval ID: | oval:org.mitre.oval:def:2244 | ||
Title: | Address Bar Spoofing Vulnerability | ||
Description: | Microsoft Internet Explorer 5.01 through 7 allows remote attackers to spoof the URL address bar and other "trust UI" components via unspecified vectors, a different issue than CVE-2007-1091 and CVE-2007-3826. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-3892 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:2284 | |||
Oval ID: | oval:org.mitre.oval:def:2284 | ||
Title: | Error Handling Memory Corruption Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Internet Explorer 5.01 through 7 allows remote attackers to execute arbitrary code via unspecified vectors involving memory corruption from an unhandled error. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-3893 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:2324 | |||
Oval ID: | oval:org.mitre.oval:def:2324 | ||
Title: | Address Bar Spoofing Vulnerability | ||
Description: | Microsoft Internet Explorer 7 on Windows XP SP2 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via repeated document.open function calls after a user requests a new page, but before the onBeforeUnload function is called. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-3826 | Version: | 5 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista | Product(s): | Microsoft Internet Explorer |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2010-07-08 | Name : Cumulative Security Update for Internet Explorer (939653) File : nvt/ms07-057.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
38212 | Microsoft IE document.open() Function Address Bar Spoofing |
37626 | Microsoft IE Unspecified Address Bar Spoofing |
37625 | Microsoft IE File Download Handling Memory Corruption Arbitrary Code Execution |
32087 | Microsoft IE onunload Event Address Bar Spoofing Microsoft Internet Explorer contains a flaw that may allow a malicious website to trap a user from further browsing to a manual entered URL in the address bar. This issue is due to a error in the handling of 'onunload' events in Internet Explorer. The flaw could possible result in phishing attacks by means of address bar spoofing. |
Snort® IPS/IDS
Date | Description |
---|---|
2018-01-17 | Microsoft Windows ShellExecute and IE7 url handling code execution attempt RuleID : 45175 - Revision : 1 - Type : OS-WINDOWS |
2017-09-26 | Microsoft Internet Explorer onBeforeUnload address bar spoofing attempt RuleID : 44081 - Revision : 1 - Type : BROWSER-IE |
2015-01-20 | Multiple product mailto uri handling code execution attempt RuleID : 32871 - Revision : 2 - Type : OS-WINDOWS |
2015-01-20 | Microsoft Windows ShellExecute and IE7 snews url handling code execution attempt RuleID : 32870 - Revision : 2 - Type : OS-WINDOWS |
2015-01-20 | Microsoft Windows ShellExecute and IE7 snews url handling code execution attempt RuleID : 32869 - Revision : 2 - Type : OS-WINDOWS |
2014-01-10 | Multiple product mailto uri handling code execution attempt RuleID : 18173 - Revision : 7 - Type : OS-WINDOWS |
2014-01-10 | Multiple product mailto uri handling code execution attempt RuleID : 18172 - Revision : 8 - Type : OS-WINDOWS |
2014-01-10 | Multiple product mailto uri handling code execution attempt RuleID : 18171 - Revision : 8 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Internet Explorer Error Handling Code Execution RuleID : 17549 - Revision : 11 - Type : BROWSER-IE |
2014-01-10 | Microsoft Windows ShellExecute and IE7 snews url handling code execution attempt RuleID : 17468 - Revision : 11 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows ShellExecute and IE7 snews url handling code execution attempt RuleID : 17467 - Revision : 9 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Internet Explorer onBeforeUnload address bar spoofing attempt RuleID : 16064 - Revision : 13 - Type : BROWSER-IE |
2014-01-10 | Multiple product snews uri handling code execution attempt RuleID : 15684 - Revision : 10 - Type : OS-WINDOWS |
2014-01-10 | Multiple product mailto uri handling code execution attempt RuleID : 13272 - Revision : 12 - Type : OS-WINDOWS |
2014-01-10 | Multiple product telnet uri handling code execution attempt RuleID : 13271 - Revision : 12 - Type : OS-WINDOWS |
2014-01-10 | Multiple product news uri handling code execution attempt RuleID : 13270 - Revision : 12 - Type : OS-WINDOWS |
2014-01-10 | Multiple product nntp uri handling code execution attempt RuleID : 13269 - Revision : 12 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows ShellExecute and IE7 url handling code execution attempt RuleID : 12688 - Revision : 16 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows ShellExecute and IE7 url handling code execution attempt RuleID : 12687 - Revision : 12 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows ShellExecute and Internet Explorer 7 url handling code exec... RuleID : 12664 - Revision : 9 - Type : BROWSER-IE |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2007-10-09 | Name : Arbitrary code can be executed on the remote host through the web client. File : smb_nt_ms07-057.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2015-01-20 21:25:02 |
|
2014-02-17 11:45:47 |
|
2014-01-19 21:30:07 |
|
2013-05-11 12:22:04 |
|